ENSURE RISK OPTIMISATION DAN MANAGE RISK TEKNOLOGI INFORMASI PADA UPT TI STMIK AMIKOM PURWOKERTO MENGGUNAKAN COBIT 5

STMIK Amikom Purwokerto is one of the private universities that focuses on the Information Technology (IT) field in Purwokerto that has implemented IT throughout the academic community. However, so far risk management related to IT implementation at STMIK Amikom Purwokerto has not been implemented optimally. This is indicated by the absence of the main guidelines and references that must be used as a standard for determining strategies such as COBIT 5 in dealing with various risks faced and the absence of risk monitoring of IT implementation at STMIK Amikom Purwokerto to ensure that the risk management procedures have been carried out properly. This shows that STMIK Amikom Purwokerto has not seriously paid attention to the problems and risks that might occur related to the implementation of IT which can harm the organization / company. Therefore, it is necessary to measure / evaluate the risk management and optimization of IT implementation at STMIK Amikom Purwokerto. One framework that can be used to evaluate IT risk management is COBIT 5 especially in the EDM03 (Ensure Risk Optimization) and APO12 (Manage Risk) domains that discuss in detail about IT risk management. The purpose of the study was to measure the level of EDM03 process (Ensure Risk Optimization) capability to find out and ascertain the extent of the risk optimization process and APO12 (Manage Risk) to determine risk management related to the implementation of IT at STMIK Amikom Purwokerto. Capability level measurement results are used to formulate corrective steps to improve risk optimization and risk management related to IT implementation at STMIK Amikom Purwokerto so as to minimize the presence of IT risks that may occur in the future and of course IT implementation can support the achievement of organizational goals /company.